Red Hat 2012:1450-02 High-Severity RPM Module Vulnerability Risk Alert
red hat
October 3, 2011
Updated rpm packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4, 5, and 6, and Red Hat Enterprise Linux 3 Extended Life Cycle Support, 5.3 L...
Solution
Before applying this update, make sure all previously-released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259
Summary
The RPM Package Manager (RPM) is a command line driven package management
system capable of installing, uninstalling, verifying, querying, and
updating software packages.
Multiple flaws were found in the way the RPM library parsed package
headers. An attacker could create a specially-crafted RPM package that,
when queried or installed, would cause rpm to crash or, potentially,
execute arbitrary code. (CVE-2011-3378)
Note: Although an RPM package can, by design, execute arbitrary code when
installed, this issue would allow a specially-crafted RPM package to
execute arbitrary code before its digital signature has been verified.
Package downloads from the Red Hat Network remain secure due to certificate
checks performed on the secure connection.
All RPM users should upgrade to these updated packages, which contain a
backported patch to correct these issues. All running applications linked
against the RPM library must be restarted for this update to take effect.
References
https://access.redhat.com/security/cve/CVE-2011-3378 https://access.redhat.com/security/updates/classification/#important
Package List
Red Hat Enterprise Linux AS (v. 3 ELS):
Source:
rpm-4.2.3-35_nonptl.src.rpm
i386:
popt-1.8.2-35_nonptl.i386.rpm
rpm-4.2.3-35_nonptl.i386.rpm
rpm-build-4.2.3-35_nonptl.i386.rpm
rpm-debuginfo-4.2.3-35_nonptl.i386.rpm
rpm-devel-4.2.3-35_nonptl.i386.rpm
rpm-libs-4.2.3-35_nonptl.i386.rpm
rpm-python-4.2.3-35_nonptl.i386.rpm
Red Hat Enterprise Linux ES (v. 3 ELS):
Source:
rpm-4.2.3-35_nonptl.src.rpm
i386:
popt-1.8.2-35_nonptl.i386.rpm
rpm-4.2.3-35_nonptl.i386.rpm
rpm-build-4.2.3-35_nonptl.i386.rpm
rpm-debuginfo-4.2.3-35_nonptl.i386.rpm
rpm-devel-4.2.3-35_nonptl.i386.rpm
rpm-libs-4.2.3-35_nonptl.i386.rpm
rpm-python-4.2.3-35_nonptl.i386.rpm
Red Hat Enterprise Linux AS version 4:
Source:
i386:
popt-1.9.1-35_nonptl.el4.i386.rpm
rpm-4.3.3-35_nonptl.el4.i386.rpm
rpm-build-4.3.3-35_nonptl.el4.i386.rpm
rpm-debuginfo-4.3.3-35_nonptl.el4.i386.rpm
rpm-devel-4.3.3-35_nonptl.el4.i386.rpm
rpm-libs-4.3.3-35_nonptl.el4.i386.rpm
rpm-python-4.3.3-35_nonptl.el4.i386.rpm
ia64:
popt-1.9.1-35_nonptl.el4.i386.rpm
popt-1.9.1-35_nonptl.el4.ia64.rpm
rpm-4.3.3-35_nonptl.el4.ia64.rpm
rpm-build-4.3.3-35_nonptl.el4.ia64.rpm
rpm-debuginfo-4.3.3-35_nonptl.el4.i386.rpm
rpm-debuginfo-4.3.3-35_nonptl.el4.ia64.rpm
rpm-devel-4.3.3-35_nonptl.el4.ia64.rpm
rpm-libs-4.3.3-35_nonptl.el4.i386.rpm
Read the Full Advisory
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Advisory ID: RHSA-2011:1349-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2011:1349.html
Issue date: 2011-10-03
Topic
Updated rpm packages that fix multiple security issues are now availablefor Red Hat Enterprise Linux 4, 5, and 6, and Red Hat Enterprise Linux 3Extended Life Cycle Support, 5.3 Long Life, 5.6 Extended Update Support,and 6.0 Extended Update Support.The Red Hat Security Response Team has rated this update as havingimportant security impact. A Common Vulnerability Scoring System (CVSS)base score, which gives a detailed severity rating, is available from theCVE link in the References section.
Relevant Releases Architectures
RHEL Desktop Workstation (v. 5 client) - i386, x86_64
Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64
Red Hat Enterprise Linux (v. 5.3.LL server) - i386, ia64, x86_64
Red Hat Enterprise Linux (v. 5.6.z server) - i386, ia64, ppc, s390x, x86_64
Red Hat Enterprise Linux AS (v. 3 ELS) - i386
Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64
Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64
Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, noarch, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES (v. 3 ELS) - i386
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux HPC Node (v. 6) - x86_64
Red Hat Enterprise Linux HPC Node Optional (v. 6) - noarch, x86_64
Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64
Red Hat Enterprise Linux Server (v. 6.0.z) - i386, ppc64, s390x, x86_64
Red Hat Enterprise Linux Server Optional (v. 6) - noarch
Red Hat Enterprise Linux Server Optional (v. 6.0.z) - noarch
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64
Red Hat Enterprise Linux Workstation Optional (v. 6) - noarch
Bugs Fixed
741606 - CVE-2011-3378 rpm: crashes and overflows on malformed header
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!